Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

CNVD
CNVDadded 2018/07/12 12:0 a.m.2 views

CloudBees Jenkins AWS CodeBuild Plugin Information Disclosure Vulnerability

CloudBees Jenkins is the United States CloudBees company's set of Java-based development of continuous integration tools , it is mainly used to monitor the continuous software version of the release/testing project and a number of timed tasks.AWS CodeBuild Plugin is used in one of the test projec...

7.8CVSS7.1AI score0.00339EPSS
Exploits0References1
Cvelist
Cvelistadded 2018/07/09 1:0 p.m.24 views

CVE-2018-1000404

Jenkins project Jenkins AWS CodeBuild Plugin version 0.26 and earlier contains a Insufficiently Protected Credentials vulnerability in AWSClientFactory.java, CodeBuilder.java that can result in Credentials Disclosure. This attack appear to be exploitable via local file access. This vulnerability...

7.6AI score0.00339EPSS
Exploits0References1
GitLab Advisory Database
GitLab Advisory Databaseadded 2018/07/09 12:0 a.m.21 views

Insufficiently Protected Credentials

The Jenkins AWS CodeBuild Plugin does not properly protect credentials in AWSClientFactory...

7.8CVSS3AI score0.00339EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder